000030527 - Information on RSA Security Analytics meta key limits for text, UInt16 and IPV4 format types

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000030527
Applies To RSA Product Set: Security Analytics
RSA Product/Service Type: Concentrator
Platform: CentOS
O/S Version: EL6
IssueThis article contains general information on meta key restrictions for text, ipv4 and UInt16.
ResolutionIn Security Analytics, text based meta keys have a fixed limit of up to 255 characters. 
Generally speaking, the following limitations are imposed:
1. The maximum size of text based meta keys is 255 characters.  Note that meta keys, like columns in a database, may be formatted.
3. A meta key such as ip.src is formatted as IPv4, which has a maximum size of 4 bytes.  
4. A meta key such as tcp.dstport is formatted as UInt16 and has a max bytes of 2, but can accept a value from 0 – 65535.